DNS Gurus
Cached · just now
76/100 SECURITY SCORE

Detected Technologies

See all in URL Inspect 1
Let's Encrypt logo Let's Encrypt Active incidents

Certificate Information

Subject
CN=win-pay.biz
Issuer
C=US, O=Let's Encrypt, CN=YR2
Valid From
June 24, 2026
Valid Until
September 22, 2026 89 days
Public Key
RSA 4096 bit Strong
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
34:84:7C:5C:A3:FF:2C:65:AE:80:94:49:5D:17:E2:DD:A1:F0:41:9F:80:78:19:40:5A:0E:0A:C4:2D:B9:90:0D
Alternative Names
89 domains

Security Configuration

TLS Protocols
TLS 1.2 TLS 1.3
Forward Secrecy
Supported (Modern clients use PFS)

HTTP Security Headers

Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured Analyze
Content-Security-Policy-Report-Only
Missing
Not configured Analyze
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
  • Add Strict-Transport-Security header with max-age of at least 1 year
  • Add Content-Security-Policy header to prevent XSS attacks
  • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
  • Add X-Content-Type-Options: nosniff
  • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
  • Consider adding Permissions-Policy to control browser features

CAA Records (Certificate Authority Authorization)

CAA Records
Not Configured (Any CA can issue certificates)
CAA Issues
  • No CAA records configured - any CA can issue certificates
Recommendations
  • Implement CAA records to restrict which CAs can issue certificates for your domain
  • This adds an extra layer of security against unauthorized certificate issuance
  • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
  • Consider adding 'iodef' record to receive security incident reports

Subject Alternative Names

89 domains
pcmonitorrank.com *.pcmonitorrank.com *.admin.pcmonitorrank.com *.app.pcmonitorrank.com *.assets.pcmonitorrank.com *.demo.pcmonitorrank.com *.dev.pcmonitorrank.com

Other domains in certificate

2017gmail.com *.2017gmail.com *.exchange.2017gmail.com
*.admin.aj-agorpg.bet aj-agorpg.bet *.aj-agorpg.bet *.dashboard.aj-agorpg.bet *.dev.aj-agorpg.bet *.jeumahvy.aj-agorpg.bet *.mail.aj-agorpg.bet *.mailer.aj-agorpg.bet *.marketing.aj-agorpg.bet *.qa.aj-agorpg.bet *.staging.aj-agorpg.bet *.stg.aj-agorpg.bet *.test.aj-agorpg.bet *.uat.aj-agorpg.bet *.v1.aj-agorpg.bet *.v2.aj-agorpg.bet *.web.aj-agorpg.bet
appsdev.co *.appsdev.co
*.98da75ac-1858-47e4-bc57-39785c07fbba.audiotalking.com *.assets.audiotalking.com audiotalking.com *.audiotalking.com *.fjesbassets.audiotalking.com *.lmvmzapi.audiotalking.com
eqesf.my *.eqesf.my *.my.eqesf.my
*.4bb825a3-bf66-411c-8eea-921ac42f0864.firstclassmag.com *.access.firstclassmag.com *.apps.firstclassmag.com *.client.firstclassmag.com *.desktop.firstclassmag.com firstclassmag.com *.firstclassmag.com *.gateway.firstclassmag.com *.hostmaster.firstclassmag.com *.kupekra.firstclassmag.com *.m.firstclassmag.com *.mx.firstclassmag.com *.ra.firstclassmag.com *.rds.firstclassmag.com *.remote.firstclassmag.com *.remoteapp.firstclassmag.com *.remoto.firstclassmag.com *.vpn.firstclassmag.com *.vpn1.firstclassmag.com *.vpnssl.firstclassmag.com *.www.firstclassmag.com *.wwww.firstclassmag.com
hadi.life *.hadi.life *.www.hadi.life
*.bbb.loja-wella.store *.ll.loja-wella.store loja-wella.store *.loja-wella.store
m7y.cc *.m7y.cc *.y.m7y.cc
*.beta.samsungliga.click *.comune.samsungliga.click samsungliga.click *.samsungliga.click *.sitemap.samsungliga.click
*.kfd25h.trail.asia *.magento.trail.asia trail.asia *.trail.asia *.ww1.trail.asia
*.console.win-pay.biz *.mail.win-pay.biz win-pay.biz *.win-pay.biz
*.betting.xn--2bs.com *.m.xn--2bs.com *.wildcard.xn--2bs.com xn--2bs.com *.xn--2bs.com